Integrity

Integrity is the property of data, systems, or processes that ensures information remains complete, accurate, and unaltered except through authorized and documented actions.

Expanded Explanation

1. Technical Function and Core Characteristics

In information security, integrity denotes the assurance that data and system resources are safeguarded against unauthorized modification, destruction, or improper creation. It forms one of the three core objectives in the confidentiality, integrity, and availability model used in security engineering.

Technical controls for integrity include cryptographic checksums, message authentication codes, digital signatures, write-once storage, access control, and transaction logging. These mechanisms detect or prevent unauthorized changes and support verification that data and system states remain trustworthy.

2. Enterprise Usage and Architectural Context

Enterprises apply integrity controls across applications, databases, networks, and Operational technology (OT) to maintain reliable records for security monitoring, compliance reporting, and business operations. Architectures incorporate integrity requirements into security policies, reference models, and control baselines.

Regulatory and standards frameworks such as those from NIST and ISO include integrity-specific controls for configuration management, change management, audit logging, and cryptographic protection of data at rest and in transit. These controls integrate with identity, access management, and governance processes.

3. Related or Adjacent Technologies

Technologies associated with integrity include Public Key Infrastructure (PKI), secure hashing algorithms, and tamper-evident logging systems. These components support verification that data has not changed between creation, storage, transmission, and use.

Data quality management, database transaction controls, and file system journaling also contribute to integrity by enforcing consistency rules and atomic, consistent, isolated, and durable properties for updates. Supply chain security, firmware validation, and trusted platform modules extend integrity protections to hardware and software components.

4. Business and Operational Significance

Integrity enables reliable financial reporting, risk management, and regulatory compliance by ensuring that records, logs, and analytical outputs are dependable. It underpins forensics activities and incident response by providing evidence that has not been altered.

Loss of integrity can cause erroneous decisions, operational disruption, safety hazards, and legal exposure. As a result, enterprises embed integrity requirements into security architectures, service-level objectives, vendor contracts, and internal control frameworks.